CVEFeed Newsroom – Latest Cybersecurity Updates
The "Cyber Newsroom Feed" module is a live feed of the latest cyber news enriched with CVE and vulnerability data. The feed is updated every 5 minutes and includes the latest news from the cyber security industry. The feed is designed to provide users with a comprehensive overview of the latest cyber security news and trends.
-
CybersecurityNews
FortiClient Code Execution Vulnerability Exploited to Deploy EKZ Malware
A newly observed exploitation campaign targeting FortiClient Endpoint Management Server (EMS) has weaponized trusted administrative infrastructure to silently deploy a previously unreported credential ...
-
TheCyberThrone
CVE-2026-48172 — LiteSpeed User-End cPanel Plugin Privilege Escalation
May 28, 2026OverviewCISA has added CVE-2026-48172 to its Known Exploited Vulnerabilities catalog, confirming active exploitation in the wild. The flaw is a maximum-severity privilege escalation vulner ...
-
CybersecurityNews
Attackers Can Exploit BadHost to Access Sensitive AI Agent Server Endpoints
A newly disclosed critical vulnerability, tracked as CVE-2026-48710 and dubbed “BadHost,” is putting thousands of AI-powered applications at risk by enabling authentication bypass through manipulated ...
-
Proofpoint
More CVEs, Same Playbook: 2026 Vulnerability Exploitation in the Wild
Executive Summary The CVE Landscape Has Changed. The Threat Actors Haven't. Proofpoint's dual telemetry streams — targeted attack visibility covering hundreds of millions of messages daily, and a glob ...
-
CybersecurityNews
CISA Warns of LiteSpeed cPanel Plugin Vulnerability Exploited in Attacks
CISA has issued an urgent warning regarding a critical vulnerability in the LiteSpeed cPanel Plugin, identified as CVE-2026-48172, which is currently being exploited in real-world attacks. The flaw en ...
-
CybersecurityNews
GitHub Enterprise Server 3.20.3 Released With Fox for Critical Vulnerabilities
GitHub has shipped GitHub Enterprise Server (GHES) 3.20.3 as a security‑driven patch release that fixes multiple critical and high‑severity vulnerabilities and rotates the signing key used to validate ...
-
CybersecurityNews
Windows Kernel Vulnerability Allows Attackers to Modify Kernel Memory Counters
A critical Windows kernel vulnerability, tracked as CVE-2026-40369, has been disclosed, enabling attackers to achieve full SYSTEM-level privilege escalation even from the most restricted environments, ...
-
security.nl
Miljoenen AI-agents en -tools kwetsbaar door beveiligingslek in Starlette
Miljoenen AI-agents en -tools bevatten een kwetsbaarheid waardoor aanvallers toegang tot de onderliggende server kunnen krijgen en gegevens kunnen stelen, zo waarschuwen beveiligingsonderzoekers. Het ...
-
security.nl
Kwetsbaarheid in 7-Zip maakt remote code execution mogelijk
Een kwetsbaarheid in het populaire archiveringsprogramma 7-zip maakt remote code execution mogelijk als gebruikers een speciaal geprepareerd archief openen. Het probleem is eind april opgelost met 7-Z ...
-
cert.pl
Vulnerabilities in Slican telephone exchanges software
Vulnerabilities in Slican telephone exchanges software CVE ID CVE-2026-35087 Publication date 27 May 2026 Vendor Slican Product IPx, CCT-1668, MAC-6400, CXS-0424, NCP Vulnerable versions All before 6. ...